Cisco Unified Communications Manager: SQL injection of IPMA

Synthesis of the vulnerability

An attacker can use a SQL injection in IPMA of Cisco Unified Communications Manager, in order to read or alter data.Impacted products:Cisco CUCM.Severity: 2/4.Creation date: 13/02/2014.Identifiers: 32843, BID-65514, CSCum05326, CVE-2014-0726, VIGILANCE-VUL-14250.